漏洞类别:Firewall
漏洞等级: 
漏洞信息
pfSense is an open-source firewall/router which based on FreeBSD. pfsense can be deployed as a perimeter firewall, router, wireless access point, DHCP server, DNS server and VPN endpoint.
The WebGUI in pfSense is affected with a local file inclusion vulnerabililty and multiple XSS vulnerabilities.
The captive portal logout function was not properly sanitized allowing attackers to manipulate the captive portal's session database with a specially crafted logout POST.
Affected Versions:
pfSense prior to version 2.2.6.
QID detection logic (unauthenticated):
The QID checks for vulnerable versions of pfSense (prior to 2.2.6), the version for pfSense is retrieved via SNMP.
漏洞危害
Successful exploitation of the vulnerabilities will allow privilege escalation, XSS attacks and manipulate the captive portal's session.
解决方案
For more information, Customers are advised to refer the following advisories:
pfSense-SA-15_09.
pfSense-SA-15_10.
pfSense-SA-15_11.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
pfSense-SA-15_09
pfSense-SA-15_10
pfSense-SA-15_11
0daybank
文章评论